Module Name
SafeNet Cryptovisor K7+ Cryptographic Module
Validation Dates
09/05/2019;09/19/2019;11/04/2019;03/02/2020;05/04/2020
Caveat
When operated in FIPS mode and initialized to Overall Level 3 per Security Policy
Security Level Exceptions
- Physical Security: Level 4
Embodiment
Multi-Chip Embedded
Description
The SafeNet Cryptovisor K7+ Cryptographic Module is a high-assurance, Hardware Security Module with a tamper-active physical enclosure targeted at the service provider market. The cryptographic module secures sensitive data and critical applications by storing, protecting and managing cryptographic keys. It provides end users with industry-leading security and performance, and can quickly be embedded directly into servers and security appliances for FIPS 140-2 validated key security for elastic deployments particularly in support of cloud applications. The module meets compliance and audit ne
FIPS Algorithms
AES |
Certs. #5652 and #5653 |
CKG |
vendor affirmed |
CVL |
Certs. #2043, #2044 and #2047 |
DRBG |
Cert. #2283 |
DSA |
Certs. #1452 and #1453 |
ECDSA |
Certs. #1526 and #1527 |
HMAC |
Cert. #3766 |
KAS |
Certs. #195 and #196 |
KBKDF |
Cert. #234 |
KTS |
AES Cert. #5652; key establishment methodology provides between 128 and 256 bits of encryption strength |
RSA |
Certs. #2632, #3042, and #3043 |
SHS |
Certs. #3952, #4533, and #4534 |
Allowed Algorithms
AES (Cert. #5652, key unwrapping; key establishment methodology provides between 128 and 256 bits of encryption strength); Diffie-Hellman (key agreement; key establishment methodology provides 112 bits of encryption strength); EC Diffie-Hellman (key agreement; key establishment methodology provides 192 bits of encryption strength); NDRNG; RSA (CVL Certs. #2043 and #2044, key wrapping; key establishment methodology provides between 112 and 150 bits of encryption strength)
Hardware Versions
808-000069-001 and 808-000070-001
Firmware Versions
1.1, 1.3, 1.4 with Boot Loader version 1.1.2 and 1.1.4